Mercurial > hg > nginx
view src/core/ngx_crypt.h @ 5034:e4441ebe05d5
Added support for {SHA} passwords (ticket #50).
Note: use of {SHA} passwords is discouraged as {SHA} password scheme is
vulnerable to attacks using rainbow tables. Use of {SSHA}, $apr1$ or
crypt() algorithms as supported by OS is recommended instead.
The {SHA} password scheme support is added to avoid the need of changing
the scheme recorded in password files from {SHA} to {SSHA} because such
a change hides security problem with {SHA} passwords.
Patch by Louis Opter, with minor changes.
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Thu, 07 Feb 2013 12:09:56 +0000 |
parents | d620f497c50f |
children |
line wrap: on
line source
/* * Copyright (C) Igor Sysoev * Copyright (C) Nginx, Inc. */ #ifndef _NGX_CRYPT_H_INCLUDED_ #define _NGX_CRYPT_H_INCLUDED_ #include <ngx_config.h> #include <ngx_core.h> ngx_int_t ngx_crypt(ngx_pool_t *pool, u_char *key, u_char *salt, u_char **encrypted); #endif /* _NGX_CRYPT_H_INCLUDED_ */